Knowbe4’s Seven Core Dimensions of Security Culture
In case you haven’t heard it enough, businesses need to be proactive when it comes to security! A single security breach can result in significant financial loss, damage to reputation, and even legal consequences. The term “security culture” has become a rallying cry to encourage companies to implement training and education for employees to help […]
April 10th is Global Work from Home Day – How is it Really Going?
It’s been three years since the world of office life was forever changed. Businesses clamored to comply with new public health policies without sacrificing everything they’d built, and work from home became our new norm. Since then, we’ve been through the ringer with data security risks and learning how to protect company assets while maintaining […]
What is CMS DE and EDE Pathway?
Direct Enrollment (DE) permits consumers to purchase a Marketplace health plan from a source other than Healthcare.gov; however, the process was cumbersome – consumers had to be redirected to Healthcare.gov to fill out the official application, and once they receive the eligibility notification, they would be redirected back to the web broker’s site. This multi-step […]
Addressing the Threat – Cybersecurity Staffing and Recruiting Challenges in 2023
It has been no secret that the Cybersecurity workforce is facing a significant talent shortage. Whether due to natural lack of interest, decrease in STEM curriculum, or impressions of being an unfavorable career experience from those previously and currently in the industry – companies face an ever dwindling pool of qualified candidates while cyber threats […]
OWASP Top 10
It might not have made Letterman’s list, but that doesn’t mean it’s not important! The OWASP Top 10 provides rankings for the most critical web app security risks. As their last update was in 2021, it remains to be seen if the evolving threat landscape will affect their rankings in the coming year, but for […]
Code, Compliance, and CISO’s. Shifts in the Cybersecurity Landscape Amid New NYDFS Regulation Changes.
On November 9, 2022 the NYDFS announced major revisions to their existing laws with regards to cybersecurity and reporting. Recent updates to their 2017 cybersecurity regulation for financial service companies are slated to take affect mid-Summer 2023. These changes present quite a few major compliance feats for entities doing business in New York to anticipate […]
IoT and OT: The Good, The Bad, and The Frameworks
With the flurry of excitement that comes with the introduction of Smart technology, it is easy to overlook all of the new cyber threat opportunities that they present. Gone are the days of easily predictable points of entry and simplified security measures. With the growing popularity of interconnected devices, it is imperative for companies to […]
Protect Your Business: The 6 Steps of Wireless PenTesting
Wireless PenTesting is the act of searching and exploiting weaknesses on a WiFi network with the purpose of gaining access to the network or lateral movement to other devices connected to it. These gaps in security discovered can range from something as simple as not changing the default password on the router, to more complex […]
2023 AI Bias Audit Laws
USA AI Bias Audit Laws The NY automated employment decision tools law Update as of December 15, 2022: Due to the volume of comments the NYC Department of Consumer & Worker Protection received in response to the proposed rule, Local Law 144 will not be enforced until April 15, 2023. ___________________________________________________________________________ The NY Local Law […]